On Sat, Feb 09, 2013 at 03:45:56PM +0100, Peter Palfrader wrote: > On Sat, 09 Feb 2013, Matt Kraai wrote: > > > UID-based prioritization requires that Tor be started using a specific > > user ID instead of relying on the User configuration setting. > > /etc/init.d/tor appears to start Tor as root and rely on the User > > configuration setting to change the user ID to debian-tor. > > > > The following patch modifies /etc/init.d/tor so that Tor is started > > using the debian-tor account, which should allow the script to work. > > Alas, that's not an option, as it would prevent tor from opending > listening ports < 1024.
How about making Tor change user but keep the CAP_NET_BIND_SERVICE capability before opening the sockets? -- Matt -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
